Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ironport email security appliance - vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2014-8016
The Cisco IronPort Email Security Appliance (ESA) allows remote malicious users to cause a denial of service (CPU consumption) via long Subject headers in e-mail messages, aka Bug ID CSCzv93864.
Cisco Ironport Email Security Appliances
4.3
CVSSv2
CVE-2014-3289
Cross-site scripting (XSS) vulnerability in the web management interface in Cisco AsyncOS on the Email Security Appliance (ESA) 8.0, Web Security Appliance (WSA) 8.0 (.5 Hot Patch 1) and previous versions, and Content Security Management Appliance (SMA) 8.3 and previous versions ...
Cisco Ironport Asyncos
Cisco Web Security Appliance -
Cisco Content Security Management Appliance -
Cisco Ironport Asyncos 8.0
Cisco Email Security Appliance Firmware -
8.5
CVSSv2
CVE-2014-2119
The End User Safelist/Blocklist (aka SLBL) service in Cisco AsyncOS Software for Email Security Appliance (ESA) prior to 7.6.3-023 and 8.x prior to 8.0.1-023 and Cisco Content Security Management Appliance (SMA) prior to 7.9.1-110 and 8.x prior to 8.1.1-013 allows remote authenti...
Cisco Ironport Asyncos 8.0
Cisco Ironport Asyncos
Cisco Ironport Asyncos 8.1
Cisco Ironport Asyncos 8.0.1
Cisco Content Security Management Appliance -
Cisco Email Security Appliance Firmware -
6.8
CVSSv2
CVE-2013-3395
Cross-site request forgery (CSRF) vulnerability in the web framework on Cisco IronPort Web Security Appliance (WSA) devices, Email Security Appliance (ESA) devices, and Content Security Management Appliance (SMA) devices allows remote malicious users to hijack the authentication ...
Cisco Email Security Appliance Firmware -
Cisco Content Security Management Appliance -
Cisco Web Security Appliance -
9
CVSSv2
CVE-2013-3384
The web framework in IronPort AsyncOS on Cisco Web Security Appliance devices prior to 7.1.3-013, 7.5 prior to 7.5.0-838, and 7.7 prior to 7.7.0-550; Email Security Appliance devices prior to 7.1.5-104, 7.3 prior to 7.3.2-026, 7.5 prior to 7.5.2-203, and 7.6 prior to 7.6.3-019; a...
Cisco Ironport Asyncos
Cisco Ironport Asyncos 7.2
Cisco Ironport Asyncos 7.8
Cisco Ironport Asyncos 7.9
Cisco Ironport Asyncos 7.3
Cisco Ironport Asyncos 7.7
Cisco Ironport Asyncos 7.5
Cisco Ironport Asyncos 7.6
7.8
CVSSv2
CVE-2013-3385
The management GUI in the web framework in IronPort AsyncOS on Cisco Web Security Appliance devices prior to 7.1.3-013, 7.5 prior to 7.5.0-838, and 7.7 prior to 7.7.0-602; Email Security Appliance devices prior to 7.1.5-106 and 7.3, 7.5, and 7.6 prior to 7.6.3-019; and Content Se...
Cisco Ironport Asyncos 7.8
Cisco Ironport Asyncos 7.3
Cisco Ironport Asyncos 7.7
Cisco Ironport Asyncos
Cisco Ironport Asyncos 7.5
Cisco Ironport Asyncos 7.2
Cisco Ironport Asyncos 7.6
Cisco Ironport Asyncos 7.9
7.8
CVSSv2
CVE-2013-3386
The IronPort Spam Quarantine (ISQ) component in the web framework in IronPort AsyncOS on Cisco Email Security Appliance devices prior to 7.1.5-106 and 7.3, 7.5, and 7.6 prior to 7.6.3-019 and Content Security Management Appliance devices prior to 7.9.1-102 and 8.0 prior to 8.0.0-...
Cisco Ironport Asyncos 7.5
Cisco Ironport Asyncos 7.9
Cisco Ironport Asyncos 7.3
Cisco Ironport Asyncos
Cisco Ironport Asyncos 8.0
Cisco Ironport Asyncos 7.6
10
CVSSv2
CVE-2011-4862
Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 up to and including 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and previous versions, Heimdal 1.5.1 and previous versions, GNU inetutils, and possibly other products allows remote malicious users...
Gnu Inetutils
Heimdal Project Heimdal
Mit Krb5-appl
Freebsd Freebsd
Fedoraproject Fedora 15
Fedoraproject Fedora 16
Debian Debian Linux 5.0
Debian Debian Linux 6.0
Debian Debian Linux 7.0
Opensuse Opensuse 11.3
Opensuse Opensuse 11.4
Suse Linux Enterprise Desktop 10
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Server 9
Suse Linux Enterprise Server 10
Suse Linux Enterprise Server 11
Suse Linux Enterprise Software Development Kit 10
Suse Linux Enterprise Software Development Kit 11
3 EDB exploits
5 Github repositories
1 Article
5
CVSSv2
CVE-2010-1568
The Send Secure functionality in the Cisco IronPort Desktop Flag Plug-in for Outlook prior to 6.5.0-006 does not properly handle simultaneously composed messages, which might allow remote malicious users to obtain cleartext contents of e-mail messages that were intended to be enc...
Cisco Ironport Desktop Flag Plugin For Outlook 6.2.4.3
Cisco Ironport Desktop Flag Plugin For Outlook
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3